Saturday, August 24, 2013

Facebook bug report posted on Mark Zuckerberg's wall

Khalil Shreateh, a Palestinian IT researcher, found a big Facebook security vulnerability, but Facebook ignored him. So he used the exploit to write on Mark Zuckerberg's wall. The hack violated a fundamental rule about how Facebook works: If you're not friends with someone, you can't write or post links on their walls. At least in theory. While the vulnerability seems like a severe one, Shreateh says that Facebook didn't take it seriously. After ignoring Shreateh's messages twice, Facebook finally gave him a reply: "I am sorry this is not a bug," the company said. So, Shreateh says, he had no choice but to take the vulnerability all the way to top by posting a message directly on Facebook CEO Mark Zuckerberg's personal Facebook page. That, as you might expect, really got Facebook's attention. <more>